2 matches found
CVE-2020-2208
Concisely, CVE-2020-2208 affects Jenkins Slack Upload Plugin versions 1.7 and earlier. The root cause is that a secret is stored unencrypted in job config.xml files on the Jenkins master, allowing disclosure to users with Extended Read permission or access to the master filesystem. Impact describ...
CVE-2020-2208
Jenkins Slack Upload Plugin 1.7 and earlier stores a secret unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system...